Virus in latest update?

My company installs the Trend Micro OfficeScan virus checker on all their machines. When I tried to install the latest upgrade for TakeCommand x64 (v14.03.53) OfficeScan interrupted the process part-way through. Basically it deleted the new tcmd.exe file as soon as it was created claiming that the file contains malware called Cryp_Xed-16.

I tried the reinstall several times and had the same results each time. I don't really trust OfficeScan not to be coming up with a false positive, but I can't turn it off, so I had to fall back to v14.00.29 because that is the most recent download I have.

This all leads me to two questions:

1) Are you certain that the latest distribution is really clean?

2) Is there anywhere I can download a slightly earlier build?

Thanks!

--Robert D Quinlan
 
Jun 2, 2008
359
4
Considering v14.03.53 was released on 12/11/12 and no one else has reported this, and all other virus scanners are in agreement, I'd say it's a false detection.

https://www.virustotal.com/file/3a3...5cd2cc32cf9eaf44216dedab/analysis/1357247928/

And Trend Micro says it's a "heuristic detection", which is merely a suspicion. Gotta love those!

http://about-threats.trendmicro.com/us/archive/malware/cryp_xed-16

AfterDawn purports to have build 52 here, or there are other versions in the "All versions" tab.

http://www.afterdawn.com/software/system_tools/system_tweaking/take_command_x64.cfm/v14_03_build_52
 
Considering v14.03.53 was released on 12/11/12 and no one else has reported this, and all other virus scanners are in agreement, I'd say it's a false detection.

That's what I figured, but I hadn't realized the update had been out that long. I wish the feature to automatically check for new versions was still available.

I did check the all versions and old versions pages, but it looks like there are no previous builds of the current version anywhere in there. Just older versions like v13.

Many thanks for pointing me to the site that has build 52!
 

rconn

Administrator
Staff member
May 14, 2008
12,356
150
My company installs the Trend Micro OfficeScan virus checker on all their machines. When I tried to install the latest upgrade for TakeCommand x64 (v14.03.53) OfficeScan interrupted the process part-way through. Basically it deleted the new tcmd.exe file as soon as it was created claiming that the file contains malware called Cryp_Xed-16.

It's definitely a false positive. It's even more curious because Trend Micro has a multisystem license for Take Command, so you'd think they would recognize it! :banghead:
 
  • Like
Reactions: TEA-Time
Similar threads
Thread starter Title Forum Replies Date
P Symantec Endpoint Protection trapped TCMD.EXE and said it contained WS.Reputation.1 (Virus?) Support 3
C tcmd 12 / AVG virus win32/Virus Support 3
L Virus in TCMD ? Support 1
thorntonpg What is the latest version of everything Support 1
D Which is the latest version for Windows XP? Support 2
C Del /W999 2gbFile.ext / latest build / Win7 x64 / MSE / Everything Support 5
A Latest TCC/LE install broken Support 1
MickeyF where to view the latest JPSoft newsletter? Support 0
S Documentation Webpage not showing latest V15 build Support 0
S How to? Set the timestamp of ZIP command built archive to match latest member Support 8
C Latest TCMDx64 fails on XP Pro x64 Support 1
H Latest installer Support 0
vefatica WAD Latest TCMD won't start. Support 15
C Latest not pasted Support 0
rfaquino Automated download of the latest TCMD build Support 9
samintz 27.0.21 Did not update ES Support 2
D ParentDirectory does not update directory history Support 6
vefatica Off topic: 10/3 cumulative update? Support 10
A After update to 24.02.49, helpfile tcmd.chm hangs when opened Support 0
Joe Caverly CMDebug v23 Help: /FEEDBACK /UPDATE Support 0
rconn News Update: Code Signing Certificate Status Support 16
C "Failed to update the system registry. Please try using REGEDIT" Support 3
Joe Caverly Update ENDLOCAL to include LIBRARY Support 0
A Reinstalling TCC-RT 21.01.57 triggers a new install instead of update/reinstall Support 3
Charles Dye Ctrl-Shift-Up doesn't update directory history Support 1
vefatica File system update after DEL? Support 4
F Update 21.00.34 -> 37, key no longer recognised Support 2
vefatica Will this survive an update? Support 3
K_Meinhard Theme not remembered by update Support 1
Seven Update / install issue with 20.0.20.10.32 take command Support 7
M Can't update TCC/TCMD to 20.00.25 Support 4
vefatica 21-22 Update problems Support 8
Alpengreis [v2problems0.x] After Update always "" with Everything Support 4
Alpengreis [TC 19.0 Beta 22/23] Install/Update-"Problems" Support 4
J Fixed Update to 18.00.25 not ok Support 7
Jay Sage Toolbar Update to INI File Not Working Support 10
vefatica Update to current install dir? Support 8
tmaynard Error on Take Command Start after recent update Support 2
vefatica Update to 54 Support 4
rconn News JP Software Forums Update Support 3
rconn News Web site update Support 0
vefatica Update removes pinned shortcut? Support 17
S How to? Download TCMD only once to update several computers Support 4
B Take Command x64 15.01.55 Error: Update installation failed Support 7
fpefpe How to? update error? Support 3
H Update to 15.01.40 freezes on cleanup... Support 3
samintz Fixed Update from 39 to 40 Support 0
rconn News Forum software update Support 5
vefatica Must update remove my taskbar-pinned shortcut? Support 20
vefatica Update removes taskbar-pinned shortcut Support 7

Similar threads